862b45e201bf7a3e964a6cfc1d0e0d17ef32d9d2558e6630143d7d30f714e2aa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11826520a7ac15adfbc4211a46576569_JaffaCakes118
Size

2.8MB
Sample

241004-c8skmathlf
MD5

11826520a7ac15adfbc4211a46576569
SHA1

33c747ba6601283d699a41149504aeca0b3ebcb8
SHA256

862b45e201bf7a3e964a6cfc1d0e0d17ef32d9d2558e6630143d7d30f714e2aa
SHA512

358bf73ad58d4aadf5adf35e57175e701128db8239f40bf0879eadab80db1be92809c5faa0f346b964e6809aa71b03268021ef805064608a05a7455fb41c62bb
SSDEEP

49152:IlOkFPal4p/b5m0jWmtlV8G8zkgNA5k/kpE+VOasY6DwOBfrnvV7UeWtN/:MDFjpcoj6rzZNA2/O6YiwOBpIeWb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  11826520a7ac15adfbc4211a46576569_JaffaCakes118
- Size
  
  2.8MB
- MD5
  
  11826520a7ac15adfbc4211a46576569
- SHA1
  
  33c747ba6601283d699a41149504aeca0b3ebcb8
- SHA256
  
  862b45e201bf7a3e964a6cfc1d0e0d17ef32d9d2558e6630143d7d30f714e2aa
- SHA512
  
  358bf73ad58d4aadf5adf35e57175e701128db8239f40bf0879eadab80db1be92809c5faa0f346b964e6809aa71b03268021ef805064608a05a7455fb41c62bb
- SSDEEP
  
  49152:IlOkFPal4p/b5m0jWmtlV8G8zkgNA5k/kpE+VOasY6DwOBfrnvV7UeWtN/:MDFjpcoj6rzZNA2/O6YiwOBpIeWb
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2